VYPR

npm package

prebid-universal-creative

pkg:npm/prebid-universal-creative

Malware

1 malicious version on record

One or more versions of this package have been flagged as containing malicious code. Audit any system that installed an affected version.

  • MAL-2025-47027Malicious code in prebid-universal-creative (npm)
    Sep 11, 2025

Vulnerabilities (1)

  • CVE-2025-59039CriSep 9, 2025

    Prebid Universal Creative (PUC) is a JavaScript API to render multiple formats. Npm users of PUC 1.17.3 or PUC latest were briefly affected by crypto-related malware. This includes the extremely popular jsdelivr hosting of this file. The maintainers of PUC unpublished version 1.1